Successful Implementation of Continuous Controls Monitoring
|
|
- Ethelbert Gibbs
- 5 years ago
- Views:
Transcription
1 Successful Implementation of Continuous Controls Monitoring Mady Cheng, CIA, CISA, CPA, MSBA Franco Lopez, CIA, CISA, CPA, MBA Office of Audits & Advisory Services County of San Diego May 6, 2014 Continuous Controls Monitoring 2
2 Needle in a Haystack? 3 Agenda Building Blocks Process Conceptual Design Project Implementation Deployment Lessons Learned 4
3 Continuous Controls Monitoring Program Building Blocks Approach Structure Data People Communicate Approach Focus on high impact analytics. Less is more. Rank potential analytics based on risk and impact. Solicit input from business process Subject Matter Experts.
4 Data Understand your data (where it comes from, what it means, how it is used in the analytic). Work with DBA. Get data dictionary. Direct Access vs. Extracts. Trust but verify. Test, test, test... User Acceptance Testing. People Cast vision. Gain Buy in from users. What s there for me? Educate users on benefits and regulatory requirements. Set the stage avoid the abusive use of the F word (False Positive). Make system user friendly. Make users job easier, not more difficult. Provide training and user manual.
5 Communicate Communicate, Communicate, Communicate More, Early. Listen. Address complaints and concerns honestly and proactively. Audience oriented Messages What they need to know, what they can understand. Internal (within the organization) vs. External. Management vs. Business Users vs. Technical IT Personnel. Structure Identify key stakeholders. Establish a Sustainable Structure: Steering Committee, Advisory Board, QA, System Admin, Users. System ownership and independence. Monitoring vs. Auditing. Project team: ACL Consultants, IT, Business Process SME, Facilitator. Set expectations. Define roles and responsibilities. Develop policies.
6 Agenda Building Blocks Process Conceptual Design Project Implementation Deployment Lessons Learned 11 Conceptual Design = Put your Building Blocks in action! 12
7 Overview A/P Oracle Centralized Analytics Purchasing PeopleSoft P-Card AX Dept Analytics Group 1 Group 2 Group 3 Dept 1 Dept 2 Dept 3 Dept 4 13 AX Analytics Current Modules P-Card Procure-to-Pay Analytic Objectives Proper Segregation of Duties Proper Authority and Approval Preventing Duplicate Payments Flagging Suspicious Vendors and Transactions Flagging Potential Conflicts of Interest 14
8 P-Card Analytics Monitored by: Depts Purchasing A1. Invalid Cardholder A/P A2. Similar Cardholder Addresses A3. Merchant Employee Match - Tax ID/SSN A4. SOD Inappropriate Cardholder Role A5. SOD Inappropriate Verifier Role A6. SOD Inappropriate Approver Role A7. SOD Approver same as Verifier/Cardholder A9. Same Merchant Same Amount Different Departments A10. Same Merchant Same Amount Same Department A11. Similar Merchants Similar Amounts (P-Card vs. AP Invoice) A12. Lost/Stolen/Suspended Card A13. Disputed Transaction A14. Restricted Word 15 Notifications Day 11: to Monitor AX Monitor Day 21: to Monitor and Manager AX Monitor Manager Day 41: to Monitor, Manager, & Internal Audit AX Monitor Manager Internal Audit 16
9 Team Steering Committee Auditor & Controller Purchasing Director Advisory Board A/P Purchasing Internal Audit System Admin Internal Audit AX Users Core Depts User Depts 17 Roles & Responsibilities Internal Audit Core Depts User Depts System Administration Communication & Coordination X X Continuous Monitoring X X End User Training X X X Advisory Board X X User Group X X X 18
10 Project Implementation Specific Tasks Involved: Functional Requirements Data Requirements User Acceptance Testing Throughout the Project: Monitor project status. Resolve issues. Communicate. Get right people involved. 19 Deployment Plan Communication Advisory Board Meetings User Group Meetings Policies & Procedures Manual System Navigation Exception Resolution Procedures End User Training User Access Setup 20
11 AX User Manual Table of Contents A. Introduction 1. Background 2. Roles and Responsibilities 3. AX User 4. User Access and Security B. System Navigation C. Exception Resolution Procedures A. Process Flowchart B. Procurement Card Analytics 21 AX User Manual Guidelines for Selecting Monitors Understand the concepts of internal controls, continuous monitoring, and fraud prevention. Possess excellent analytical, problem solving, communication, and people skills. Good judgment, tact, organizational acumen. To avoid conflicts of interest, AX Monitors should NOT be current P-Cardholders or Approvers. 22
12 AX User Manual Exception Resolution Procedures A1 Invalid Cardholder Objective: To identify cardholders who are not valid employees (e.g., contractors; retired or temporary employees). Description: Identify all P-Card transactions where the Employee ID of the Cardholder does not exist in the HR File as a valid employee. A valid employee is a cardholder who meets all of the following criteria: o Employee Status = A o Personnel Status = E o Reg_Temp = R 23 AX User Manual Exception Resolution Procedures Reg-Temp Status: R = Regular (Employee with benefits) T = Temporary (Employee with no benefits) Temporary Employees may not participate in the P-Card program unless they have a waiver on file with the P-Card Unit. If exception waiver does not exist, notify P-Card Unit to cancel the card. 24
13 Communication: Sample Slides 25 Why AX System? Industry Best Practice COSO Internal Control framework Monitoring Activities Conduct ongoing and separate evaluations Evaluate and communicate control deficiencies 26
14 Why AX System? External Auditing Requirements Consideration of Fraud in a Financial Statement Audit (AICPA SAS #99). Risk Assessment Standards (AICPA SAS # ). 27 What does it Mean? AX System Strengthen management controls in business processes. Detect potential fraud, waste & abuse. Enable management to identify, investigate, and resolve issues before they escalate. For external audits: may result in fewer audit tests or samples. 28
15 AuditExchange Screenshots 29 30
16 Overview All Entities 31 Overview Specific Entity 32
17 My Exceptions Entity Summary 33 My Exceptions by Analytic 34
18 Exception Details 35 Edit Exception Details 36
19 Lessons Learned 37 Ten Commandments I. Thou shalt have no other analytics besides the high-impact ones. II. Thou (auditor) shalt not make yourself a monitor. III. Thou shalt not take thy data in vain, for the analytics will not forgive those who misuse the data. 38
20 Ten Commandments IV. Remember the run day to keep it going. V. Honor thy Steering Committee and Advisory Board, so that thy program may live long. VI. Thou shalt not murder thy users, even when they complain. VII. Thou shalt not mingle incompatible data. 39 Ten Commandments VIII.Thou shalt steal ideas from user groups. IX. Thou shalt not bear false positives to thy users where possible. X. Thou (User Dept) shalt not covet thy neighbor s analytic results thou have enough trouble of your own. 40
21 Next Steps Maintain User Access Management Analytic Upkeep Upgrades User Training and Communication Strategy and Planning Stakeholder Feedback Design/Establish New Analytics Create Analytics for the Analytics 41 Thank You! 42
22 Contacts Mady Cheng Franco Lopez Office of Audits & Advisory Services County of San Diego 43
CITY OF CORPUS CHRISTI
CITY OF CORPUS CHRISTI CITY AUDITOR S OFFICE Audit of Purchasing Program Project No. AU12-004 September 20, 2012 City Auditor Celia Gaona, CIA CISA CFE Auditor Nora Lozano, CIA CISA Executive Summary In
More informationItem # 6.1 ISC: UNRESTRICTED AC Attachment. Corporate Credit Card (Data Analytics) Audit
Corporate Credit Card (Data Analytics) Audit January 16, 2018 THIS PAGE LEFT INTENTIONALLY BLANK Table of Contents Executive Summary... 5 1.0 Background... 6 2.0 Audit Objectives, Scope and Approach...
More informationOAUG / DOAG SIG DAY Vienna Sept 27 th 2010 Oracle Governance Risk and Compliance OAUG. August 2010
OAUG / DOAG SIG DAY Vienna Sept 27 th 2010 Oracle Governance Risk and Compliance OAUG Automated Controls and Compliance in Oracle E-Business Suite August 2010 Focus Show some hands-on examples of how technical
More informationBuilding P-Card Policies and Procedures. Stacy Gregg, CPPB
Building P-Card Policies and Procedures Stacy Gregg, CPPB Introduction How much experience in the group? A. I am a p-card holder with little experience outside of purchasing B. I am a liaison or reconciler
More informationAGENDA USING CONTINUOUS CONTROLS MONITORING TO MAXIMIZE P2P CONTROLS & RISK PREVENTION. Welcome! 60-second FISCAL Overview. Change in Purchase-to-Pay
USING CONTINUOUS CONTROLS MONITORING TO MAXIMIZE P2P CONTROLS & RISK PREVENTION Welcome! Mike LaDuke AGENDA 60-second FISCAL Overview Change in Purchase-to-Pay Escalation of Fraud Incidences What is Continuous
More informationUNIVERSITY OF CALIFORNIA, SAN FRANCISCO AUDIT SERVICES. PROCUREMENT CARD Project # June 2011
, SAN FRANCISCO AUDIT SERVICES PROCUREMENT CARD Project #11-042 June 2011 Fieldwork Performed by: Paul Lapachet, Senior Auditor Reviewed by: Tom Poon, Associate Director Approved by: Rick Catalano, Director
More informationFile. Audit. City Auditor
Accounts Payab ble - Vendor Master File Audit Craig Hametner, CPA, CIA, CISA, CMA, CFE City Auditor Prepared By Marla Hamilton, Staff Auditor Reviewed By Jed Johnson, Sr. Auditor INTERNAL AUDIT DEPARTMENT
More informationManaging Risk in Your P2P Process: 10 Ways that Automation Can Help Mitigate Risk
Managing Risk in Your P2P Process: 10 Ways that Automation Can Help Mitigate Risk Chris Doxey, CAPP, CCSA, CICA, CPC President, Doxey, Inc. chris@chrisdoxey.com 571-267-9107 Agenda Introduction to Risk
More informationPrince William County, Virginia
Prince William County, Virginia Internal Audit of Procurement Card Management Fiscal Year 2014/2015 Prepared By: Internal Auditors June 29, 2015 Table of Contents Transmittal Letter... 1 Executive Summary...
More informationRapidly Reduce Segregation of Duty Violations in Oracle EBS R12 Responsibilities Session ID#: 15042
Rapidly Reduce Segregation of Duty Violations in Oracle EBS R12 Responsibilities Session ID#: 15042 Responsibility templates from a catalog of pre-configured ERP roles. Workflow to update, review as well
More informationIntegrating COSO s Fraud Risk Management Guide on an Enterprise Scale
Integrating COSO s Fraud Risk Management Guide on an Enterprise Scale September 15, 2017 Vincent Walden Partner EY Atlanta Delores White Director, Internal Audit Southern Company Scott Hulsey Chief Compliance
More information38 Years of Excellent Client Service New COSO Model and How Internal Controls Help to Reduce Opportunity for Fraud
38 Years of Excellent Client Service New COSO Model and How Internal Controls Help to Reduce Opportunity for Fraud Presented By William Blend, CPA, CFE Session Overview Review the new COSO model on internal
More informationInternal Audit Report. Contract Administration: 601CT Contracts TxDOT Internal Audit Division
Internal Audit Report Contract Administration: 601CT Contracts TxDOT Internal Audit Division Objective Review contract administration and governance of 601CT contracts for structural compliance with laws
More informationTEXAS BOARD OF NURSING CONTRACT PROCUREMENT AND MANAGEMENT HANDBOOK JULY 2018
TEXAS BOARD OF NURSING CONTRACT PROCUREMENT AND MANAGEMENT HANDBOOK JULY 2018 I. Introduction a. Purpose i. All staff involved with procuring goods and services for the agency must comply with proper purchasing
More informationUtility Systems Access Rights Audit
Utility Systems Access Rights Audit Jed Johnson, CGAP Interim City Auditor Prepared By Melinda Milner, CISA, CISSP, CRISC Sr IT Auditor November 25, 2013 Report 201308 Table of Contents Authorization...
More informationLeverage T echnology: July 19 th, 2013 Adil Khan. Move Your Business Forward. Copyright. Fulcrum Information Technology, Inc.
Life After ERP Go-Live: Navigating to Nirvana Learn how leading organizations are utilizing Advanced Controls to make systematic improvements in their ERP systems to achieve expected benefits of ERP systems
More informationGeneral Government and Gainesville Regional Utilities Vendor Master File Audit
FINAL AUDIT REPORT A Report to the City Commission General Government and Gainesville Regional Utilities Vendor Master File Audit Mayor Lauren Poe Mayor Pro-Tem Adrian Hayes-Santos Commission Members David
More informationGOVERNANCE AES 2012 INFORMATION TECHNOLOGY GENERAL COMPUTING CONTROLS (ITGC) CATALOG. Aut. / Man. Control ID # Key SOX Control. Prev. / Det.
GOVERNANCE 8.A.1 - Objective: Information Technology strategies, plans, personnel and budgets are consistent with AES' business and strategic requirements and goals. Objective Risk Statement(s): - IT Projects,
More information2013 COSO Internal Control Framework Update. September 5, 2013
2013 COSO Internal Control Framework Update September 5, 2013 Agenda 2013 COSO IC Framework Topic Minutes The update process 5 What is not changing / What is changing 5 The 17 principles and changes to
More informationInternal Audit & the Audit Committee
HCCA Audit & Compliance Committee Conference February 2008 Internal Audit & the Audit Committee Glen C. Mueller, CPA, CIA, CISA, CISM Scripps Health, San Diego, CA VP-Chief Audit & Compliance Executive
More informationIIA Springfield IL Chapter
Adding Value with Data Analytics IIA Springfield IL Chapter October 14, 2010 0 Jan Beckmann, CPA, ACL Certified Trainer, ACDA jbeckmann@bswllc.com 314.983.1254 1050 N. Lindbergh Blvd. St. Louis, Missouri
More informationInternal Controls and the Internal Auditor. Presented By: Richard Kudlik, CPA
Internal Controls and the Internal Auditor Presented By: Richard Kudlik, CPA Interrelated Components Control Environment Risk Assessment Control Activities Information and Communication Monitoring What
More informationSingle Audit and Yellow Book / Govt. Audit Standards Update Presented by: William Blend, CPA, CFE
Single Audit and Yellow Book / Govt. Audit Standards Update Presented by: William Blend, CPA, CFE Topics Overview of New Single Audit Uniform Guidance Yellow Book Update and New Green Book OMB - 2CFR CHAPTER
More informationProcurement or Team Card Procedure Visa File Processing and Error Correction
Procurement or Team Card Procedure Visa File Processing and Error Correction Objectives... 1 Tips and Tricks... 1 Navigation... 1 Overview... 1 Procedure Step-by-Step Instructions to Manually Load the
More informationSeattle Public Schools The Office of Internal Audit
Seattle Public Schools The Office of Internal Audit Internal Audit Report September 1, 2014 through Current Issue Date: June 21, 2016 Executive Summary Background Information The function is centralized
More informationArlington County, Virginia
Arlington County, Virginia Purchase Card Cycle Audit: Human Resources Department 1 st Quarter of Fiscal Year 2016 (July 1, 2015 September 25, 2015) Table of Contents Transmittal Letter... 1 Executive Summary...
More informationINTERNAL CONTROLS 101
INTERNAL CONTROLS 101 Presented by: Christopher White, CPA Kristina Hoyng, CPA Northwest Region Overview of Topic Internal Controls - The Basics Components of Internal Controls Benefits of Internal Controls
More informationCompetency Model. Level B. Level C Applies to: Manager Coordinator. Applies to: Assistant Vice President Assistant Dean Director
Job Knowledge a. Demonstrates detailed knowledge of FIT programs, products and services in independently carrying out varied professional duties. a. Uses thorough knowledge of the range of FIT products,
More informationIT Service Delivery And Support
IT Service Delivery And Support Week Ten Auditing Application Control IT Auditing and Cyber Security Fall 2016 Instructor: Liang Yao 1 Transactional Applications vs. Support Application Application Controls
More information2/27/2017. Segregation of Duties/ Internal Controls. Objectives. Agenda
Segregation of Duties/ Internal Controls 2017 WASBO Accounting Conference David Maccoux, Shareholder Objectives Discuss failures of internal controls to detect or prevent fraud and learn how to implement
More informationModule 1: Safeguarding District Resources: Roles & Responsibilities
Module 1: Safeguarding District Resources: Roles & Responsibilities Presenter: Jamie P. McPherson Leadership Development Manager New School Board Member Mandated Training Day Two: Fiscal Oversight Training
More informationAUSTIN INDEPENDENT SCHOOL DISTRICT INTERNAL AUDIT DEPARTMENT PROCUREMENT AND CONTRACTING AUDIT PROGRAM
GENERAL: The purchasing function is among the most important business activities of the District. The primary objective of a good purchasing system is providing quality materials, supplies, and equipment
More informationEnhanced Security. Management, Separation of Duties
Enhanced Security Management, Separation of Duties and Audit Support for XA Belinda Daub, Senior Consultant Technical Services belinda.daub@cistech.net 704-814-0004 Agenda Concepts, best practices, and
More informationProactively Managing ERP Risks. January 7, 2010
Proactively Managing ERP Risks January 7, 2010 0 Introductions and Objectives Establish a structured model to demonstrate the variety of risks associated with an ERP environment Discuss control areas that
More informationContinuous Monitoring - Definition
Agenda Continuous Monitoring ADB Treasury Operation Road Map for Introducing Continuous Monitoring in Treasury Investment Activities using ACL Lessons Learnt References Q&A 2 Continuous Monitoring - Definition
More informationInternal Auditing 101 with Panel Discussion. VGFOA Virginia Beach May 2013
Internal Auditing 101 with Panel Discussion VGFOA Virginia Beach May 2013 Introduction of Our Panel Mike Garber Partner, PBMares Jon Munch Financial Services Division Chief - Fauquier County Government
More informationProjects in Internal Audit at CA
Projects in Internal Audit at CA Vikas Dutta, Principal Internal Audit Rob Zanella, VP Internal Audit Saty Ghosh, SVP General Auditor November 3, 2012 Agenda Introductions CA Technologies CA Technologies
More informationAUDIT HIGHLIGHT August 31, 2009
OC Board of Supervisors Internal Audit Department O R A N G E C O U N T Y AUDIT HIGHLIGHT August 31, 2009 INTERNAL AUDITOR S REPORT TO THE BOARD OF SUPERVISORS MONTHLY PERFORMANCE REPORT OF CAATS: A-C,
More informationMANATEE COUNTY CLERK OF THE CIRCUIT COURT INTERNAL AUDIT DEPARTMENT FINANCIAL MANAGEMENT DEPARTMENT PURCHASING CARD PROGRAM TABLE OF CONTENTS
MANATEE COUNTY CLERK OF THE CIRCUIT COURT INTERNAL AUDIT DEPARTMENT FINANCIAL MANAGEMENT DEPARTMENT PURCHASING CARD PROGRAM A U D I T R E P O R T TABLE OF CONTENTS I. INTERNAL AUDIT REPORT A. Background;
More informationFraud Prevention, Detection, and Internal Controls
Fraud Prevention, Detection, and Internal Controls Budget, Accounting and Reporting Council May 28, 2015 Sherrie Ard, CPA, CFE Financial Management Specialist Local Government Performance Center Local
More informationProject Progress Report
Project Progress Report As of December 31, 2000 Sam M. McCall, CPA, CIA, CGFM City Auditor Customer Information System Project Implementation Phase Report #0116 February 21, 2001 Summary The City is currently
More informationP-Cards Done Right. Katie Beatty Community Engagement Manager
P-Cards Done Right Katie Beatty Community Engagement Manager About the NAPCP We are an association committed to advancing YOU and other Commercial Card and Payment professionals worldwide by providing
More informationFiscal Year 2014 Internal Audit Annual Report
Fiscal Year 2014 Internal Audit Annual Report Prepared by Tarrant County College District Internal Audit Department TABLE OF CONTENTS I. Compliance with House Bill 16 (Texas Government Code, Section 2102.015):
More informationSecure Your ERP Environment with Automated Controls Naomi Iseri,Sr. GRC Solution Consultant
Secure Your ERP Environment with Automated Controls Naomi Iseri,Sr. GRC Solution Consultant Agenda Introductions & Objectives Why Automate Controls What types of Automation Controls Do I Need When to Implement
More informationTopics. Current Environment and Relevant Risks. Speakers. Contract and Compliance Monitoring Building a Successful Program
Speakers Contract and Compliance Monitoring Building a Successful Program January 21, 2016 Alyssa G. Martin, CPA Executive Partner, Advisory Services 25+ years of public accounting experience, with a practice
More informationChange Management Best Practices for ERP Systems A Case Study from Audits of Oracle E-Business Suite Installations
Change Management Best Practices for ERP Systems A Case Study from Audits of Oracle E-Business Suite Installations Introduction - Jeffrey T. Hare, CPA CISA CIA Founder of ERP Risk Advisors Written various
More informationAUDIT HIGHLIGHT June 30, 2009
Exhibit C, Page 1 of 12, Board Date: 7/28/09 OC Board of Supervisors Internal Audit Department O R A N G E C O U N T Y AUDIT HIGHLIGHT June 30, 2009 INTERNAL AUDITOR S REPORT TO THE BOARD OF SUPERVISORS
More informationU.S. Bank Access Online
U.S. Bank Access Online Overview U.S. Bank Access Online provides organizations with real time access to their commercial card programs anywhere, anytime, within a secured environment. This powerful proprietary
More informationFiscal Year 2018 Internal Audit Annual Report
Fiscal Year 2018 Internal Audit Annual Report Prepared by Tarrant County College District Internal Audit Department TABLE OF CONTENTS I. Compliance with Texas Government Code, Section 2102.015: Posting
More informationAgenda. P-Card Misuse and Fraud 9/18/2017
P-Card Misuse and Fraud Presenter Victor Griego, CPA Internal Auditor 3 University of New Mexico Agenda What is a P Card? Advantages of P Cards Risks of P Cards Internal Controls for P Cards Red Flags
More informationBrunswick Access Control System Business Owner and Manager Guidelines
Brunswick Access Control System Business Owner and Manager Guidelines Creation Date: February 18, 2010 Version: 1.0 Last Updated: April 20, 2010, 2010 Author: Maureen Broman, Controls & Compliance BACS:
More informationUNIVERSITY OF TOLEDO INTERNAL AUDIT BILL THE CUSTOMER
The following control objectives provide a basis for strengthening your control environment for the process of billing the customer. When you select an objective, you will access a list of the associated
More informationLOYALTY MANAGEMENT FOR RETAIL
RSM TECHNOLOGY ACADEMY elearning Syllabus and Agenda LOYALTY MANAGEMENT FOR RETAIL FOR MICROSOFT DYNAMICS AX Course Details 3 Audience 3 Continuing Professional Education 3 Registration and Payment 3 Refund
More informationInternal Audit How the Internal Audit Function Facilitates Internal Controls. Office of the City Auditor City of Tallahassee
Internal Audit How the Internal Audit Function Facilitates Internal Controls Office of the City Auditor City of Tallahassee 1 Internal Audits and Internal Controls Session Purpose: How does an internal
More informationAngelina Angel Colonneso CLERK OF THE CIRCUIT COURT AND COMPTROLLER OF MANATEE COUNTY
Angelina Angel Colonneso CLERK OF THE CIRCUIT COURT AND COMPTROLLER OF MANATEE COUNTY Internal Audit Department Audit Report Financial Management Department Purchasing Card Program Audit May 16, 2016 Audit
More informationGovernment Auditing Standards
United States Government Accountability Office GAO By the Comptroller General of the United States August 2011 Government Auditing Standards 2011 Internet Version CONTENTS CHAPTER 1... 1 GOVERNMENT AUDITING:
More informationData Analytics for Travel and Entertainment (T&E) Auditing. Robert Luu, Senior Solutions Consultant, ACL Date: September 27, 2016.
Data Analytics for Travel and Entertainment (T&E) Auditing Presented by: Steve Dirks, Senior Account Executive, ACL Robert Luu, Senior Solutions Consultant, ACL Date: 2 Opening Remarks Moderator R. Kinney
More informationCommittee on Information Technology
Committee on Information Technology Regular Meeting March 15, 2018 1 Dr. Carlton B. Goodlett Place, City Hall, Room 305 San Francisco, CA 94102 1 Agenda Roll Call Approval of Meeting Minutes from February
More informationInternal Audit Report Accounts Payable September 2017
Internal Audit Report 17-03 September 2017 City of Sioux Falls Internal Audit Department Carnegie Town Hall 235 W. 10 th Street Sioux Falls, SD 57117-7402 www.siouxfalls.org/council/internal-audit September
More informationS23 - Hallmarks of a Strong Audit Function Lilian Fong and Marta O'Shea
S23 - Hallmarks of a Strong Audit Function Lilian Fong and Marta O'Shea Hallmarks of a Strong Audit Function Agenda I. Internal Audit s Role, Mission and Charter II. III. IV. Internal Audit Reporting Structure
More informationDEPARTMENT OF DEFENSE Defense Contract Management Agency INSTRUCTION. Government Purchase Cards
DEPARTMENT OF DEFENSE Defense Contract Management Agency INSTRUCTION Government Purchase Cards Contracts Directorate DCMA-INST 117 CPR: DCMA-AQ Validated current, March 10, 2014 1. PURPOSE. This Instruction:
More informationUsing Transactional Analysis for
Using Transactional Analysis for Effective Fraud Detection Date: 15 th January 2009 Nishith Seth Seth Services.P. Ltd. www.sspl.net.in Cost Indirect costs: image, morale Fraud Issues & Impact Direct costs:
More informationCONTRACT ADMINISTRATION: The Good, the Bad, the Ugly. Reel em in!
CONTRACT ADMINISTRATION: The Good, the Bad, the Ugly. Reel em in! Contract Administration Definition Following the award of a contract, the management actions that must be taken to assure full compliance
More informationContract and Procurement Fraud. Fraud in Procurement without Competition
Contract and Procurement Fraud Fraud in Procurement without Competition Sole-Source Awards Noncompetitive procurement process through the solicitation of only one source Procurement through sole-source
More informationOLA Privacy Policy for Australia
OLA Privacy Policy for Australia 1. Respecting your privacy OLA Australia Pty Ltd and its related bodies corporate (including its ultimate holding company, ANI Technologies Private Limited) (the OLA Group)
More informationLeverage T echnology: Turn Risk into Opportunity
Give me a lever long enough and a fulcrum on which to place it, and I shall move the world - Archimedes Copyright. Fulcrum Information Technology, Inc. Is Your ERP Leaking Cash? Monitor PO and AP transac/ons
More informationAgenda. Manage the Risk of Inefficiency and Occupational Fraud in Day-to-Day Business Processes
Manage the Risk of Inefficiency and Occupational Fraud in Day-to-Day Business Processes July 12, 2011 2:00 3:00pm ET Stephanie Maziol, Product Marketing Director, GRC Applications, Oracle 1 Agenda Welcome
More informationAutomating PeopleSoft Segregation of Duties: Financials/HCM/Campus Solutions
Automating PeopleSoft Segregation of Duties: Financials/HCM/Campus Solutions Lewis Hopkins, Sr. Applications Consultant November 13, 2014 Reminders A recording of today s session will be sent to all registrants
More informationTop 10 SAP audit and security risks
Top 10 SAP audit and security risks Securing your system and vital data Prepared by: Luke Leaon, Manager, RSM US LLP luke.leaon@rsmus.com, +1 612 629 9072 SAP is a functional enterprise resource planning
More informationDate Effective: 1/01/2018 CLASS SPECIFICATION Purchasing and Facilities Division Manager GENERAL PURPOSE DISTINGUISHING CHARACTERISTICS
City of Moreno Valley Date Council Approved Date Effective: 1/01/2018 CLASS SPECIFICATION Purchasing and Facilities Division Manager GENERAL PURPOSE Under general direction, manages, directs and participates
More informationContract and Procurement Fraud
Contract and Procurement Fraud Fraud in Procurement Without Competition 2018 Association of Certified Fraud Examiners, Inc. Sole-Source Awards The procurement process is noncompetitive through the solicitation
More informationFederal Acquisition Service
U.S. General Services Administration Federal Acquisition Service GSA SmartPay Fleet Management Essentials Varuna Singh Center of Charge Card Management General Services Administration 2017 Fed Fleet Forum
More informationCredit Cards & Purchasing Cards (P-Card) (USFR Memorandum No. 253)
Credit Cards & Purchasing Cards (P-Card) (USFR Memorandum No. 253) Paula Gustafson Michael Stelpstra February 1, 2012 Credit Cards & P-Cards What Memo No. 253 covers: Policies & Procedures Card Issuance
More informationResults in Brief. Audit of WMATA s Vendor Master File (VMF) OIG January 18, 2019
Results in Brief OIG 19-06 January 18, 2019 Why We Did This Review The VMF is a foundational element of the Accounts Payable and Procurement processes. The VMF contains vital information about vendors
More informationResults in Brief. Audit of WMATA s Vendor Master File (VMF) OIG January 18, 2019
Results in Brief OIG 19-06 January 18, 2019 Why We Did This Review The VMF is a foundational element of the Accounts Payable and Procurement processes. The VMF contains vital information about vendors
More informationAgenda. Prepare for a successful transition to PeopleSoft
Agenda Purpose: Prepare for a successful transition to PeopleSoft Using Chartfields Timekeeping and Payroll Human Resources Purchasing, Accounts Payable and Capital Assets Training More Information Chartfield
More informationFRAUD AWARENESS UPDATE
Tammy Michaud, CPA, Principal Sarah Belliveau, CPA, Senior Manager FRAUD AWARENESS UPDATE berrydunn.com CATEGORIES OF FRAUD Asset misappropriations (stealing) Theft or misuse of assets Corruption Inappropriate
More informationContinuous Controls Monitoring for Transactions: The Next Frontier for GRC Automation
Research Publication Date: 15 January 2009 ID Number: G00164382 Continuous Controls Monitoring for Transactions: The Next Frontier for GRC Automation French Caldwell, Paul E. Proctor Continuous controls
More informationDetecting & Preventing Procurement Fraud Using Data Analysis to Detect Improper Disbursements
Detecting & Preventing Procurement Fraud Using Data Analysis to Detect Improper Disbursements April 29, 2014 2:00 3:00pm ET Andrew Simpson, MBA Chief Operating Officer, CaseWare Analytics Paul Soos, CFE,
More informationChief Audit Executive, Global Internal Audit
Chief Audit Executive, Global Internal Audit Location: [Global] Category: Executive Job Type: Fixed term, Full-time *We have engaged an executive search firm to lead the Chief Audit Executive recruitment
More informationThe Road to Continuous Assurance. Jason A. Gross, CPA, CIA, CFE, CISA, ACDA Vice President, Controls Management Siemens Financial Services, Inc.
The Road to Continuous Assurance Jason A. Gross, CPA, CIA, CFE, CISA, ACDA Vice President, Controls Management Siemens Financial Services, Inc. Agenda Key Drivers for Successful Implementation Technology
More informationFraud Prevention: How to Identify and Protect Your Higher Ed Institution
Fraud Prevention: How to Identify and Protect Your Higher Ed Institution November 16, 2017 Investment advisory services are offered through CliftonLarsonAllen Wealth Advisors, LLC, an SEC-registered investment
More informationSEGREGATION OF DUTIES for SAP
SEGREGATION OF DUTIES for SAP SEGREGATION-OF-DUTIES In todays modern, technology driven world, segregation-of-duties (SoD) is enforced through business applications and ERP s, but highlighting breakdowns
More information3/28/2016. Compliance and Operational Risk Management using Data Analytics. Agenda. ACL History. ACL Today. ACL is growing. What is data-driven GRC?
Agenda Compliance and Operational Risk Management using Data Analytics Presenters: Scott Robinson Account Executive, ACL Public Sector Mark Swann Metropolitan Auditor, Metropolitan Government of Nashville
More informationIs your ERP ready for COSO 2013?
Is your ERP ready for COSO 2013? Securing the ERP Webcast series February 26, 2015 Agenda COSO 2013 overview What is changing and what is not? Internal control definition Components and principles Transition
More informationBudget, Finance and Audit Committee April 15, 2013
Budget, Finance and Audit Committee April 15, 2013 Overview In September 2012, an audit of selected landfill financial controls was released by the City Auditor reporting eleven findings with recommendations
More informationREPORT OF INTERNAL AUDIT
REPORT OF INTERNAL AUDIT PRESENTED TO REVIEW/TASK: # 09-03 IT Security Review REVIEW CLIENTS: City Accounting Division / IT Department REVIEW DATE: November 9, 2008 REPORT DATE: March 26, 2009 REPORT RE-ISSUE
More informationThe New COSO Framework: Avoiding Deficiencies and Driving Change
The New COSO Framework: Avoiding Deficiencies and Driving Change Session #308 Speaker Introductions Kimberley Mobley, CPA, CISA Ryan Isbell, CPA Greg Daniel, CISA, CRMA Partner Controller Manager Johnson
More informationFraud Prevention, Detection and Control. Elizabeth Coles, CPA Aldrich CPAs + Advisors LLP
Fraud Prevention, Detection and Control Elizabeth Coles, CPA Aldrich CPAs + Advisors LLP 1 Agenda Who and Why? Fraud Schemes and Risks Fraud Prevention what can you do? 3 Who Commits Fraud? Long time,
More informationThe University of Texas at Tyler. Procurement and Travel Card Audit
February 2016 THE UNIVERSITY OF TEXAS AT TYLER OFFICE OF AUDIT AND CONSULTING SERVICES 3900 UNIVERSITY BOULEVARD TYLER, TEXAS 75799 BACKGROUND The University of Texas at Tyler (UT Tyler) offers University
More informationWashington Metropolitan Area Transit Authority Board Action/Information Summary
Washington Metropolitan Area Transit Authority Board Action/Information Summary Action Information MEAD Number: 201804 Resolution: Yes No TITLE: Board Audit Awareness Training PRESENTATION SUMMARY: The
More informationInternal Controls: Need Them, Have Them, Love Them
Internal Controls: Need Them, Have Them, Love Them Tiffany R. Winters, Esquire twinters@bruman.com Brustein & Manasevit Fall Forum 2010 Why Do We Have Internal Controls? The Federal Managers Financial
More informationMSD Internal Control Policy 01/16/08. Metropolitan Sewerage District of Buncombe County Internal Control Policy
Metropolitan Sewerage District of Buncombe County Internal Control Policy Purpose: To document how the management of the Metropolitan Sewerage District of Buncombe County ( District ) has fulfilled their
More informationReview of the management of data quality in the My Government of Canada Human Resources system. Office of Audit and Evaluation
Review of the management of data quality in the My Government of Canada Human Resources system Office of Audit and Evaluation Table of Contents Executive summary... i Introduction... 1 Definition of internal
More informationRisk-based Assessment of User Access Controls and Segregation of Running Oracle Applications Presented by: Jeffrey T. Hare, CPA CISA CIA ERP Seminars
Risk-based Assessment of User Access Controls and Segregation of Duties for Companies Running Oracle Applications Presented by: Jeffrey T. Hare, CPA CISA CIA ERP Seminars Presentation Agenda Overview:
More informationSTUDY UNIT TEN INTERNAL AUDIT RESPONSIBILITIES FOR FRAUD
STUDY UNIT TEN INTERNAL AUDIT RESPONSIBILITIES FOR FRAUD 1 10.1 Fraud -- Nature, Prevention, and Detection..................................... 1 10.2 Fraud -- Indicators........................................................
More informationContracting Internal Controls and Risks. Contract Auditing v Contract Monitoring
Contracting Internal Controls and Risks Contract Auditing v Contract Monitoring We will cover the following: Overview of the internal audit function Importance of internal controls Stakeholders in the
More informationHow to stop improper payments: A focus on government vendor risk
How to stop improper payments: A focus on government vendor risk TODAY S SPEAKERS Nichole Gable SENIOR MANAGER KEARNEY & COMPANY Nonie Dalton SENIOR PRODUCT MANAGER, PUBLIC SECTOR, ACL IN TODAY S WEBINAR
More informationProcurement Card City Agencies Performance Audit
Procurement Card City Agencies Performance Audit September 2009 Office of the Auditor Audit Services Division City and County of Denver Dennis J. Gallagher Auditor The Auditor of the City and County of
More informationRSM TECHNOLOGY ACADEMY elearning Syllabus and Agenda RETAIL POS SETUP FOR MICROSOFT DYNAMICS AX
RSM TECHNOLOGY ACADEMY elearning Syllabus and Agenda RETAIL POS SETUP FOR MICROSOFT DYNAMICS AX Course Details 3 Audience 3 Registration and Payment 3 Refund Policy 3 Prerequisites 3 Participant Requirements
More information